artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 41e44c5) | patch
Add pledge("stdio") before parsing pfkey messages. This applies to
authortobhe <tobhe@openbsd.org>
Mon, 9 Oct 2023 15:32:14 +0000 (15:32 +0000)
committertobhe <tobhe@openbsd.org>
Mon, 9 Oct 2023 15:32:14 +0000 (15:32 +0000)
commit202aab4366ed4611c6b252e04a8146925a05301c
tree3b5cfa612a35d4ac58fa0274d8270c962e15312dtree | snapshot
parent41e44c553d835e31b2c334ef4461b58feb973f14commit | diff
Add pledge("stdio") before parsing pfkey messages. This applies to
ipsecctl -m and ipsecctl -s. Refactor ipsecctl_show_*() to setup all
sysctls first before dropping privileges and finally parsing and
printing IPsec SAs and flows.

feedback and ok mbuhl@
ok deraadt@
sbin/ipsecctl/ipsecctl.c diff | blob | history
sbin/ipsecctl/ipsecctl.h diff | blob | history
sbin/ipsecctl/pfkey.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim